Authentication Bypass Vulnerability in Rockwell Automation Products

CVE-2024-10943

Summary

An authentication bypass vulnerability has been identified in Rockwell Automation's software, stemming from shared secrets across user accounts. This vulnerability could allow an attacker to impersonate legitimate users by exploiting their ability to gather additional information during the authentication process, potentially leading to unauthorized access and manipulation of sensitive data.

References